SOC Engineer Milton Keynes SC Clearance Sponsorship Available £65,000 package We're seeking a hands-on SOC Engineer to join a growing Cyber Security Operations Centre supporting a diverse portfolio of customers across multiple sectors This is a specialist SOC Engineering position focused on building, maintaining, and optimising the tools, telemetry, detections, and automation that enable SOC Analysts to identify and respond to threats effectively. This is not a generalist cyber security role. Key Responsibilities Administer and optimise Microsoft Sentinel (or equivalent SIEM), including log ingestion, parsing, normalisation, and retention. Develop and maintain SOAR workflows and automation using Azure Logic Apps, Python, PowerShell, Bash, and KQL. Onboard and manage security telemetry from a range of data sources. Design, implement, and tune detection rules to improve alert quality and reduce false positives. Conduct proactive threat hunting using SIEM, EDR, and threat intelligence sources. Support incident investigations, containment, and response activities. Monitor and maintain the health of SOC tooling, sensors, agents, and log pipelines. Produce documentation, runbooks, and operational procedures. Skills & Experience Experience engineering and supporting SIEM platforms, ideally Microsoft Sentinel. Strong Scripting and automation skills (Python, PowerShell, Bash, KQL). Experience with SOAR technologies and security automation. Knowledge of detection engineering and threat hunting. Strong understanding of Windows and Linux logging. Good networking knowledge including TCP/IP, DNS, Firewalls, and proxies. Experience within a SOC, NOC, or 24/7 operational environment. Familiarity with MITRE ATT&CK, CVEs, and vulnerability management. Exposure to cloud security monitoring across Azure, AWS, or Microsoft 365. Desirable Certifications Microsoft SC-200 CompTIA Security+/CySA+ ISC2 CC or CISSP GIAC GCIA CEH Cisco CyberOps or Fortinet certifications What's on Offer? Opportunity to work within a mature and growing SOC environment. Exposure to a wide range of customer environments and technologies. Security Clearance sponsorship available for eligible candidates. Clear opportunities to contribute to automation, detection engineering, and SOC improvement initiatives. Location: Milton Keynes (full-time onsite) Working Pattern: Shift rota including evenings, weekends, bank holidays on-call support. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Jun 05, 2026
Full time
SOC Engineer Milton Keynes SC Clearance Sponsorship Available £65,000 package We're seeking a hands-on SOC Engineer to join a growing Cyber Security Operations Centre supporting a diverse portfolio of customers across multiple sectors This is a specialist SOC Engineering position focused on building, maintaining, and optimising the tools, telemetry, detections, and automation that enable SOC Analysts to identify and respond to threats effectively. This is not a generalist cyber security role. Key Responsibilities Administer and optimise Microsoft Sentinel (or equivalent SIEM), including log ingestion, parsing, normalisation, and retention. Develop and maintain SOAR workflows and automation using Azure Logic Apps, Python, PowerShell, Bash, and KQL. Onboard and manage security telemetry from a range of data sources. Design, implement, and tune detection rules to improve alert quality and reduce false positives. Conduct proactive threat hunting using SIEM, EDR, and threat intelligence sources. Support incident investigations, containment, and response activities. Monitor and maintain the health of SOC tooling, sensors, agents, and log pipelines. Produce documentation, runbooks, and operational procedures. Skills & Experience Experience engineering and supporting SIEM platforms, ideally Microsoft Sentinel. Strong Scripting and automation skills (Python, PowerShell, Bash, KQL). Experience with SOAR technologies and security automation. Knowledge of detection engineering and threat hunting. Strong understanding of Windows and Linux logging. Good networking knowledge including TCP/IP, DNS, Firewalls, and proxies. Experience within a SOC, NOC, or 24/7 operational environment. Familiarity with MITRE ATT&CK, CVEs, and vulnerability management. Exposure to cloud security monitoring across Azure, AWS, or Microsoft 365. Desirable Certifications Microsoft SC-200 CompTIA Security+/CySA+ ISC2 CC or CISSP GIAC GCIA CEH Cisco CyberOps or Fortinet certifications What's on Offer? Opportunity to work within a mature and growing SOC environment. Exposure to a wide range of customer environments and technologies. Security Clearance sponsorship available for eligible candidates. Clear opportunities to contribute to automation, detection engineering, and SOC improvement initiatives. Location: Milton Keynes (full-time onsite) Working Pattern: Shift rota including evenings, weekends, bank holidays on-call support. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
About the opportunity Complete the free training, gain a qualification and career guidance - no brainer! Are you ready to launch a career in cyber security? Netcom Training's fully-funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you'll gain hands-on experience that prepares you for today's fast-growing cyber security and IT roles. Our learners have gone on to roles such as IT support, second line support, junior development, cyber security analysis and business analyst positions, working with companies across tech, logistics, public services and digital sectors. Complete the with, helping you start your career protecting businesses, data and digital systems. Course Details Start Date: 01.06 Duration: 5 weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you'll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills and behaviours for the sector Protection: Gain practical knowledge to protect and secure digital environments Potential Roles: Cyber Security Analyst IT Support Technician Junior Penetration Tester SOC Analyst Eligibility To apply, you must: Live in the Sheffield area Be aged 19 or over Earn below the gross annual wage cap of £24,570 Not currently be undertaking other government-funded training Not be in the UK on a student, graduate, postgraduate, or sponsored visa, or as a dependent Cost This is a fully-funded course with no fees - complete the training, gain essential cyber security skills.
Jun 04, 2026
Full time
About the opportunity Complete the free training, gain a qualification and career guidance - no brainer! Are you ready to launch a career in cyber security? Netcom Training's fully-funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you'll gain hands-on experience that prepares you for today's fast-growing cyber security and IT roles. Our learners have gone on to roles such as IT support, second line support, junior development, cyber security analysis and business analyst positions, working with companies across tech, logistics, public services and digital sectors. Complete the with, helping you start your career protecting businesses, data and digital systems. Course Details Start Date: 01.06 Duration: 5 weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you'll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills and behaviours for the sector Protection: Gain practical knowledge to protect and secure digital environments Potential Roles: Cyber Security Analyst IT Support Technician Junior Penetration Tester SOC Analyst Eligibility To apply, you must: Live in the Sheffield area Be aged 19 or over Earn below the gross annual wage cap of £24,570 Not currently be undertaking other government-funded training Not be in the UK on a student, graduate, postgraduate, or sponsored visa, or as a dependent Cost This is a fully-funded course with no fees - complete the training, gain essential cyber security skills.
Head of Cyber Security Location: Manchester Salary: £66,582 to £77,368 per annum Vacancy Type: Permanent, Full Time The closing date is 14 June 2026 Job summary Do you want to do meaningful work that makes a genuine difference to society? Our main purpose here at The National Institute for Health and Care Excellence (NICE) is to improve health and wellbeing by putting science and evidence at the heart of health and care decision-making. As an organisation we all collaborate to achieve this goal by empowering our workforce to do great things! Please note that this role may not be eligible for sponsorship under the Skilled Worker route. Please refer to the DirectGov website for more information on eligibility. We reserve the right to close adverts early should we receive sufficient applications, so please don't delay your submission. Main duties of the job As Head of Cyber Security, you will lead NICE's cyber security function, providing strategic direction and expert leadership to protect digital services, infrastructure and information assets. You will act as NICE's senior cyber security specialist, overseeing security operations, managing risk and embedding secure-by-design principles across digital and technology services. Working closely with senior leaders, technical teams and external partners, you will play a key role in strengthening NICE's security posture and resilience across services. You will: Lead the development, implementation and enforcement of cyber security strategies, policies and standards across the organisation. Act as NICE's cyber security subject matter expert, advising senior leaders and technical teams on complex risks, threats and mitigations. Oversee security operations, incident response and threat intelligence, ensuring strong protection and rapid response to cyber incidents. Manage organisational risk and vulnerability management, including compliance with Cyber Essentials Plus and the Data Security and Protection Toolkit. Embed secure-by-design principles into digital services, systems and technology programmes from early design through delivery. Build strong relationships with internal stakeholders, NHS partners and suppliers to align security approaches and share intelligence. About us The Infrastructure, Cyber & IT Operations team plays a critical role in ensuring NICE's digital services are secure, resilient, and reliable. The team is responsible for safeguarding systems and information, supporting users across the organisation, and maintaining operational stability with minimal risk or disruption. As part of this team, you will help protect nationally important digital services while enabling NICE to deliver trusted guidance and information to health and care users across England. We can offer you a great place to work with good benefits, flexible working, and a supportive, friendly, and inclusive environment. We are passionate and proud of the work we do and the impact we make. NICE offer: Generous NHS Pension - Secure your future with one of the most rewarding pension schemes in the UK Flexible working - Enjoy a healthy work-life balance with options like remote working, compressed hours and flexible start/finish times Exclusive discounts - Save on shopping, dining and more with a Blue Light CardTime to recharge - Start with 27 days' annual leave plus bank holidays Inclusive staff networks - Join supportive communities like Women in NICE, Race Equality Network, Disability Advocacy and NICE and Proud - we celebrate diversity Tailored development - Grow your career with personalised learning and development opportunities Person Specification Essential Holds highly developed specialist knowledge and expertise acquired through master's degree level or equivalent qualification/experience. Additionally holds specialist knowledge of the relevant area(s) of expertise as outlined in the person specification, acquired through relevant practical experience and training/development Hold either Certified Information Security Professional (CISSP), Certified Information Security Manager (CISM) or Certified Cyber Professional (CCP) qualification. Proven experience in a senior cyber security role with direct line management, performance management, and coaching responsibilities. Significant practical experience in security operations, vulnerability assessment and threat intelligence. Expert-level understanding of core cyber security concepts, infrastructure security, and the modern threat landscape. Proficiency in developing and implementing security policies and risk management frameworks based on standards like CAF, Cyber Essentials, ISO27001 etc Desirable Experience working in the Health Sector/NHS Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. To Apply If you feel you are a suitable candidate and would like to work for NICE (The National Institute for Health and Care Excellence), please click apply to be redirected to their website to complete your application.
Jun 03, 2026
Full time
Head of Cyber Security Location: Manchester Salary: £66,582 to £77,368 per annum Vacancy Type: Permanent, Full Time The closing date is 14 June 2026 Job summary Do you want to do meaningful work that makes a genuine difference to society? Our main purpose here at The National Institute for Health and Care Excellence (NICE) is to improve health and wellbeing by putting science and evidence at the heart of health and care decision-making. As an organisation we all collaborate to achieve this goal by empowering our workforce to do great things! Please note that this role may not be eligible for sponsorship under the Skilled Worker route. Please refer to the DirectGov website for more information on eligibility. We reserve the right to close adverts early should we receive sufficient applications, so please don't delay your submission. Main duties of the job As Head of Cyber Security, you will lead NICE's cyber security function, providing strategic direction and expert leadership to protect digital services, infrastructure and information assets. You will act as NICE's senior cyber security specialist, overseeing security operations, managing risk and embedding secure-by-design principles across digital and technology services. Working closely with senior leaders, technical teams and external partners, you will play a key role in strengthening NICE's security posture and resilience across services. You will: Lead the development, implementation and enforcement of cyber security strategies, policies and standards across the organisation. Act as NICE's cyber security subject matter expert, advising senior leaders and technical teams on complex risks, threats and mitigations. Oversee security operations, incident response and threat intelligence, ensuring strong protection and rapid response to cyber incidents. Manage organisational risk and vulnerability management, including compliance with Cyber Essentials Plus and the Data Security and Protection Toolkit. Embed secure-by-design principles into digital services, systems and technology programmes from early design through delivery. Build strong relationships with internal stakeholders, NHS partners and suppliers to align security approaches and share intelligence. About us The Infrastructure, Cyber & IT Operations team plays a critical role in ensuring NICE's digital services are secure, resilient, and reliable. The team is responsible for safeguarding systems and information, supporting users across the organisation, and maintaining operational stability with minimal risk or disruption. As part of this team, you will help protect nationally important digital services while enabling NICE to deliver trusted guidance and information to health and care users across England. We can offer you a great place to work with good benefits, flexible working, and a supportive, friendly, and inclusive environment. We are passionate and proud of the work we do and the impact we make. NICE offer: Generous NHS Pension - Secure your future with one of the most rewarding pension schemes in the UK Flexible working - Enjoy a healthy work-life balance with options like remote working, compressed hours and flexible start/finish times Exclusive discounts - Save on shopping, dining and more with a Blue Light CardTime to recharge - Start with 27 days' annual leave plus bank holidays Inclusive staff networks - Join supportive communities like Women in NICE, Race Equality Network, Disability Advocacy and NICE and Proud - we celebrate diversity Tailored development - Grow your career with personalised learning and development opportunities Person Specification Essential Holds highly developed specialist knowledge and expertise acquired through master's degree level or equivalent qualification/experience. Additionally holds specialist knowledge of the relevant area(s) of expertise as outlined in the person specification, acquired through relevant practical experience and training/development Hold either Certified Information Security Professional (CISSP), Certified Information Security Manager (CISM) or Certified Cyber Professional (CCP) qualification. Proven experience in a senior cyber security role with direct line management, performance management, and coaching responsibilities. Significant practical experience in security operations, vulnerability assessment and threat intelligence. Expert-level understanding of core cyber security concepts, infrastructure security, and the modern threat landscape. Proficiency in developing and implementing security policies and risk management frameworks based on standards like CAF, Cyber Essentials, ISO27001 etc Desirable Experience working in the Health Sector/NHS Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. To Apply If you feel you are a suitable candidate and would like to work for NICE (The National Institute for Health and Care Excellence), please click apply to be redirected to their website to complete your application.
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Jun 03, 2026
Full time
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Threat and Vulnerability Manager £55k Newport (x1 day a week) Benefits: 28.9% pension & Flexi-working The Opportunity Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space. In this role, you will oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services. Vulnerability Management (Primary Focus) Lead and improve the organisation's vulnerability management programme across a hybrid IT environment, including infrastructure and applications. Oversee penetration testing activities, including scoping, prioritisation, stakeholder engagement, and remediation tracking. Assess and prioritise vulnerabilities using a risk-based, threat-informed approach aligned with business, regulatory, and audit requirements. Manage the full vulnerability lifecycle, including triage, mitigation planning, remediation guidance, and coordination with relevant teams. Develop and maintain policies, procedures, standards, and best practice guidance. Threat Intelligence Produce tactical, operational, and strategic threat intelligence assessments using internal, commercial, open-source, and external partner intelligence sources. Support intelligence-sharing initiatives and strengthen overall cyber intelligence capability. Provide timely analysis of emerging threats and the wider threat landscape. Cyber Risk Management Support cyber risk management activities through risk and threat assessments aligned with regulatory and security standards. Provide practical, proportionate security advice to stakeholders. Reporting & Metrics Develop and maintain meaningful metrics to measure the effectiveness of vulnerability management and threat intelligence functions. Incident Response Support Support and enhance incident response processes. Represent cyber security during operational incidents, coordinate with stakeholders, and assist threat intelligence and threat-hunting activities. Technical Experience Strong experience in vulnerability management, threat intelligence, and security operations within complex enterprise environments. Experience managing penetration testing programmes. Understanding of secure development practices and security testing within the software development lifecycle (SDLC). Broad technical knowledge of hybrid/cloud infrastructure, identity management, and application security. Here's What You'll Get in Return Pension scheme up to 28.9% Salary: £55,000 Full Flexi-Time - Work your 37.5 hours on any schedule between 5am and 10pm Accrued Time - If you work 37.5 hours in 4 days, you can have the fifth day off Unlimited Pluralsight learning videos 25 Days annual leave PLUS Bank Holidays (Increasing to 30 days) Think this one's for you If you think this Threat and Vulnerability Manager opportunity is for you then please apply online. Yolk Public Sector & Not-for-Profit team works with organisations across the UK to fulfil their recruitment needs and to achieve their D&I objectives. We recruit temporary, contract and permanent hires for 1 off specialist needs or for volume campaigns. We support our applicants to navigate the public sector recruitment processes and secure their dream jobs. Yolk Recruitment is an equal opportunities employer and embraces diversity in our workforce. We employ the best people for the job at hand and actively encourage applications from all qualified candidates, regardless of gender, age, race, religion, sexual orientation, disability, educational background, parental status, gender identity or any other protected characteristic. We champion and celebrate diversity at Yolk allowing our team to bring their whole selves to work.
Jun 01, 2026
Full time
Threat and Vulnerability Manager £55k Newport (x1 day a week) Benefits: 28.9% pension & Flexi-working The Opportunity Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space. In this role, you will oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services. Vulnerability Management (Primary Focus) Lead and improve the organisation's vulnerability management programme across a hybrid IT environment, including infrastructure and applications. Oversee penetration testing activities, including scoping, prioritisation, stakeholder engagement, and remediation tracking. Assess and prioritise vulnerabilities using a risk-based, threat-informed approach aligned with business, regulatory, and audit requirements. Manage the full vulnerability lifecycle, including triage, mitigation planning, remediation guidance, and coordination with relevant teams. Develop and maintain policies, procedures, standards, and best practice guidance. Threat Intelligence Produce tactical, operational, and strategic threat intelligence assessments using internal, commercial, open-source, and external partner intelligence sources. Support intelligence-sharing initiatives and strengthen overall cyber intelligence capability. Provide timely analysis of emerging threats and the wider threat landscape. Cyber Risk Management Support cyber risk management activities through risk and threat assessments aligned with regulatory and security standards. Provide practical, proportionate security advice to stakeholders. Reporting & Metrics Develop and maintain meaningful metrics to measure the effectiveness of vulnerability management and threat intelligence functions. Incident Response Support Support and enhance incident response processes. Represent cyber security during operational incidents, coordinate with stakeholders, and assist threat intelligence and threat-hunting activities. Technical Experience Strong experience in vulnerability management, threat intelligence, and security operations within complex enterprise environments. Experience managing penetration testing programmes. Understanding of secure development practices and security testing within the software development lifecycle (SDLC). Broad technical knowledge of hybrid/cloud infrastructure, identity management, and application security. Here's What You'll Get in Return Pension scheme up to 28.9% Salary: £55,000 Full Flexi-Time - Work your 37.5 hours on any schedule between 5am and 10pm Accrued Time - If you work 37.5 hours in 4 days, you can have the fifth day off Unlimited Pluralsight learning videos 25 Days annual leave PLUS Bank Holidays (Increasing to 30 days) Think this one's for you If you think this Threat and Vulnerability Manager opportunity is for you then please apply online. Yolk Public Sector & Not-for-Profit team works with organisations across the UK to fulfil their recruitment needs and to achieve their D&I objectives. We recruit temporary, contract and permanent hires for 1 off specialist needs or for volume campaigns. We support our applicants to navigate the public sector recruitment processes and secure their dream jobs. Yolk Recruitment is an equal opportunities employer and embraces diversity in our workforce. We employ the best people for the job at hand and actively encourage applications from all qualified candidates, regardless of gender, age, race, religion, sexual orientation, disability, educational background, parental status, gender identity or any other protected characteristic. We champion and celebrate diversity at Yolk allowing our team to bring their whole selves to work.
Finance Officer Location: Cheltenham Salary: £37,723 Specialist Pay may also be included for: Level 4 AAT qualification, or Part-qualified CCAB (e.g. CIMA Management Level, ACCA Applied Skills, ACA Professional Level, CIPFA Diploma) Flexible working: due to the sensitive nature of the work, this role is entirely office-based. However, we know how important a healthy work-life balance is, which is why we offer part-time (minimum of four days), and compressed hours, with flexibility around start and finish times. Full time hours are up to 37 hours, depending on location. About us MI5 keeps the country safe from serious threats like terrorism and attempts by states to harm the UK, its people and way of life. We carry out investigations by obtaining, analysing and assessing intelligence, and then work with a range of partners, including MI6 and GCHQ to disrupt these threats. Through our protective security arm, we provide advice and guidance to government, businesses and other organisations about how to keep themselves safe. A role in MI5 means you ll do unique and challenging work in a supportive and encouraging environment, making a real difference to UK national security. As a Finance Officer, you ll play a key part in managing annual expenditure, with the focus of your work shaped by the team you join. In Financial Analysis, you ll provide insights that help colleagues across the agencies make better decisions. In Financial Accounting and Reporting, you ll summarise, analyse and detail financial transactions within the UK Intelligence Services. And in Financial Operations, you ll help us respond and adapt to ever-evolving business needs. Whichever team you join, you ll support our vital work by overseeing budgets, reviewing spend, and bringing careful judgement to forecast assumptions. You'll also carry out accounting adjustments, from accruals to prepayments, ensuring the accounts always reflect the true position. Day to day, you ll work closely with colleagues, stakeholders and business partners, helping others understand how to produce forecasts, interpret financial information, and manage their budgets with confidence. There may also be opportunities to take on line management responsibilities. Please note that this role sits within the Finance Capability, and you ll be expected to remain in this area for a minimum of five years long enough to really grow into the work and make it your own. To apply, you ll need demonstrable experience in a similar role and be actively working towards a Level 4 AAT qualification. Alternatively, you ll hold (or be predicted) a 2:1 or above in a degree in Finance, Accounting, Business or Economics. Just as important as your skills is who you are. You re collaborative, a problem-solver who s able to build strong relationships, has a keen eye for detail, and has the drive to contribute to a mission that keeps the UK safe. From the moment you join us, we want you to have all the support you need to continue growing. If you re still working towards recognised financial qualifications such as AAT, ACCA, or CIMA, we ll fund your studies. Once qualified, we'll cover your professional membership fees and make sure you stay sharp with ongoing technical development. To help you manage any studies alongside your work, you'll receive a generous paid study leave package tailored to your qualification. You'll also have a dedicated study buddy, regular support from your line manager, and access to a wide range of internal communities, mentoring programmes and peer networks. At MI5 diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. Find out more about our culture, working environment and diversity on our website To find out more about this role, and to apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will nonetheless be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. You can apply at the age of 17 years, if successful you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website
May 29, 2026
Full time
Finance Officer Location: Cheltenham Salary: £37,723 Specialist Pay may also be included for: Level 4 AAT qualification, or Part-qualified CCAB (e.g. CIMA Management Level, ACCA Applied Skills, ACA Professional Level, CIPFA Diploma) Flexible working: due to the sensitive nature of the work, this role is entirely office-based. However, we know how important a healthy work-life balance is, which is why we offer part-time (minimum of four days), and compressed hours, with flexibility around start and finish times. Full time hours are up to 37 hours, depending on location. About us MI5 keeps the country safe from serious threats like terrorism and attempts by states to harm the UK, its people and way of life. We carry out investigations by obtaining, analysing and assessing intelligence, and then work with a range of partners, including MI6 and GCHQ to disrupt these threats. Through our protective security arm, we provide advice and guidance to government, businesses and other organisations about how to keep themselves safe. A role in MI5 means you ll do unique and challenging work in a supportive and encouraging environment, making a real difference to UK national security. As a Finance Officer, you ll play a key part in managing annual expenditure, with the focus of your work shaped by the team you join. In Financial Analysis, you ll provide insights that help colleagues across the agencies make better decisions. In Financial Accounting and Reporting, you ll summarise, analyse and detail financial transactions within the UK Intelligence Services. And in Financial Operations, you ll help us respond and adapt to ever-evolving business needs. Whichever team you join, you ll support our vital work by overseeing budgets, reviewing spend, and bringing careful judgement to forecast assumptions. You'll also carry out accounting adjustments, from accruals to prepayments, ensuring the accounts always reflect the true position. Day to day, you ll work closely with colleagues, stakeholders and business partners, helping others understand how to produce forecasts, interpret financial information, and manage their budgets with confidence. There may also be opportunities to take on line management responsibilities. Please note that this role sits within the Finance Capability, and you ll be expected to remain in this area for a minimum of five years long enough to really grow into the work and make it your own. To apply, you ll need demonstrable experience in a similar role and be actively working towards a Level 4 AAT qualification. Alternatively, you ll hold (or be predicted) a 2:1 or above in a degree in Finance, Accounting, Business or Economics. Just as important as your skills is who you are. You re collaborative, a problem-solver who s able to build strong relationships, has a keen eye for detail, and has the drive to contribute to a mission that keeps the UK safe. From the moment you join us, we want you to have all the support you need to continue growing. If you re still working towards recognised financial qualifications such as AAT, ACCA, or CIMA, we ll fund your studies. Once qualified, we'll cover your professional membership fees and make sure you stay sharp with ongoing technical development. To help you manage any studies alongside your work, you'll receive a generous paid study leave package tailored to your qualification. You'll also have a dedicated study buddy, regular support from your line manager, and access to a wide range of internal communities, mentoring programmes and peer networks. At MI5 diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. Find out more about our culture, working environment and diversity on our website To find out more about this role, and to apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will nonetheless be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. You can apply at the age of 17 years, if successful you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website
Your new company As part of their continued investment in technology and cyber resilience, my client is seeking a Cloud Security Engineer to join their dynamic Technology Directorate. This is a pivotal role supporting the Head of Cyber Security and Infrastructure in strengthening the cyber security estate and ensuring robust protection across our digital platforms. Your new role As Cloud Security Engineer, you will play a key role in enhancing cyber resilience. You'll be responsible for leveraging tools such as Microsoft Defender, Sentinel, Azure, and their SOC partner to conduct threat analysis, risk assessments, and implement effective controls. You'll support the delivery of their Cyber Security Sub Strategy in line with the Cyber Assessment Framework, and contribute to the design and operation of threat intelligence, incident response, vulnerability management, and ethical hacking capabilities. You'll work closely with internal stakeholders and external partners to ensure compliance with ISO27001, Cyber Essentials+, and other regulatory frameworks. This role also involves reporting on cyber threats and performance using Power BI, supporting penetration testing, and contributing to the development of secure IT architecture and access control policies. What you'll need to succeed Extensive experience administering the Azure platform and Microsoft security tools (Defender, Sentinel, Intune, Autopilot). Strong understanding of cyber security frameworks including ISO27001, Cyber Essentials+, and the Cyber Assessment Framework. Proven experience in identity and access management, end-user device management, and working with external SOCs. Ability to deliver against cyber security roadmaps, respond to incidents, and remediate vulnerabilities. Experience in building Power BI dashboards and writing security policies and SOPs. A collaborative mindset with excellent communication skills and a proactive approach to continuous improvement. What you'll get in return A chance to make a real impact in a purpose-driven organisation. Flexible working arrangements. Access to professional development and training. A supportive and inclusive culture. Competitive salary up to £52K and benefits package. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Oct 03, 2025
Full time
Your new company As part of their continued investment in technology and cyber resilience, my client is seeking a Cloud Security Engineer to join their dynamic Technology Directorate. This is a pivotal role supporting the Head of Cyber Security and Infrastructure in strengthening the cyber security estate and ensuring robust protection across our digital platforms. Your new role As Cloud Security Engineer, you will play a key role in enhancing cyber resilience. You'll be responsible for leveraging tools such as Microsoft Defender, Sentinel, Azure, and their SOC partner to conduct threat analysis, risk assessments, and implement effective controls. You'll support the delivery of their Cyber Security Sub Strategy in line with the Cyber Assessment Framework, and contribute to the design and operation of threat intelligence, incident response, vulnerability management, and ethical hacking capabilities. You'll work closely with internal stakeholders and external partners to ensure compliance with ISO27001, Cyber Essentials+, and other regulatory frameworks. This role also involves reporting on cyber threats and performance using Power BI, supporting penetration testing, and contributing to the development of secure IT architecture and access control policies. What you'll need to succeed Extensive experience administering the Azure platform and Microsoft security tools (Defender, Sentinel, Intune, Autopilot). Strong understanding of cyber security frameworks including ISO27001, Cyber Essentials+, and the Cyber Assessment Framework. Proven experience in identity and access management, end-user device management, and working with external SOCs. Ability to deliver against cyber security roadmaps, respond to incidents, and remediate vulnerabilities. Experience in building Power BI dashboards and writing security policies and SOPs. A collaborative mindset with excellent communication skills and a proactive approach to continuous improvement. What you'll get in return A chance to make a real impact in a purpose-driven organisation. Flexible working arrangements. Access to professional development and training. A supportive and inclusive culture. Competitive salary up to £52K and benefits package. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Deerfoot Recruitment Solutions Limited
City, London
Threat Intelligence Analyst Fully Onsite in London Inside IR35 Contract Deerfoot Recruitment has been engaged to identify an experienced Threat Intelligence Analyst for a leading global banking organisation with an advanced cyber defence function in London. This is a fantastic opportunity to shape threat intelligence, work alongside Red/Blue Teams, and operationalise intelligence using the latest cybersecurity, penetration testing, and Breach & Attack Simulation (BAS) platforms. Key Responsibilities: Monitor and analyse global cyber threat landscapes, identifying threats, adversary tactics, and emerging risks Collaborate with Red Team, Blue Team, and Penetration Testing specialists to integrate intelligence into Breach & Attack Simulation (BAS) scenarios Act as a point of contact between threat intelligence, Red/Blue, and SOC teams to align threat modelling and adversary simulation Support threat hunting activities and provide tactical, contextual intelligence to stakeholders Model and assess threat actors, including motivations, capabilities, attack vectors, and impacts Leverage the MITRE ATT&CK framework for mapping adversary behaviours and detection Develop and update threat profiles, attack surface assessments, and adversary emulation plans Present high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM tools, and threat data enrichment solutions Practical exposure to Breach & Attack Simulation (BAS) tools for threat scenario development Strong knowledge of adversary TTPs, MITRE ATT&CK, and modern threat modelling techniques Technical proficiency with pentesting tools such as Metasploit Framework, Burp Suite, Kali Linux, and Pentera Experience producing actionable threat intelligence reports and clear technical briefings If you are ready to drive the next wave of cyber defense, apply via Deerfoot Recruitment today to learn more about this exciting contract opportunity. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate £1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.
Oct 03, 2025
Contractor
Threat Intelligence Analyst Fully Onsite in London Inside IR35 Contract Deerfoot Recruitment has been engaged to identify an experienced Threat Intelligence Analyst for a leading global banking organisation with an advanced cyber defence function in London. This is a fantastic opportunity to shape threat intelligence, work alongside Red/Blue Teams, and operationalise intelligence using the latest cybersecurity, penetration testing, and Breach & Attack Simulation (BAS) platforms. Key Responsibilities: Monitor and analyse global cyber threat landscapes, identifying threats, adversary tactics, and emerging risks Collaborate with Red Team, Blue Team, and Penetration Testing specialists to integrate intelligence into Breach & Attack Simulation (BAS) scenarios Act as a point of contact between threat intelligence, Red/Blue, and SOC teams to align threat modelling and adversary simulation Support threat hunting activities and provide tactical, contextual intelligence to stakeholders Model and assess threat actors, including motivations, capabilities, attack vectors, and impacts Leverage the MITRE ATT&CK framework for mapping adversary behaviours and detection Develop and update threat profiles, attack surface assessments, and adversary emulation plans Present high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM tools, and threat data enrichment solutions Practical exposure to Breach & Attack Simulation (BAS) tools for threat scenario development Strong knowledge of adversary TTPs, MITRE ATT&CK, and modern threat modelling techniques Technical proficiency with pentesting tools such as Metasploit Framework, Burp Suite, Kali Linux, and Pentera Experience producing actionable threat intelligence reports and clear technical briefings If you are ready to drive the next wave of cyber defense, apply via Deerfoot Recruitment today to learn more about this exciting contract opportunity. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate £1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.
IT Infrastructure Engineer - Security - HYBRID WORKING We have an exciting opportunity for an IT Infrastructure Engineer - Security to join one of our biggest customers who are in the financial services sector. As an IT Security Specialist, you will support the day-to-day operations of the Counter Threat Unit, applying your strong background in infrastructure engineering, cloud-based architectures, and solution delivery. You will contribute to maintaining secure systems across hybrid environments, leveraging your expertise in both on-premises and cloud platforms such as Azure, AWS, and GCP. Main Responsibilities as IT Infrastructure Engineer - Security: Assist in gathering and analysing threat intelligence; monitor systems and networks to identify anomalies and support situational awareness. Follow established processes to help ensure compliance with legal, regulatory, and internal security requirements. Contribute to the investigation and resolution of security incidents, working in line with organisational procedures and business continuity plans. Operate tools and processes to identify vulnerabilities and support timely patching across systems and infrastructure. Configure and maintain security tools and systems (eg SIEM, Firewalls) in accordance with defined policies and procedures. Support the production of security metrics and documentation; share knowledge and best practice with colleagues to promote security awareness. Skills and experience you need as IT Infrastructure Engineer - Security: Minimum 3 years' experience in Information Security or Infrastructure & Networking. Deep knowledge of network security, Firewalls, VPNs, and endpoint protection across enterprise systems. Good communication skills both verbally and in writing with good questioning and listening skills in order to identify customer requirements. Ability to explain complex IT concepts to all levels of customer. Demonstrable ability to follow security operations, procedures, policies and activities. Experience managing incident response across an organization involving multiple business unit. A general understanding of data protection processes, policies and tools. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Oct 02, 2025
Full time
IT Infrastructure Engineer - Security - HYBRID WORKING We have an exciting opportunity for an IT Infrastructure Engineer - Security to join one of our biggest customers who are in the financial services sector. As an IT Security Specialist, you will support the day-to-day operations of the Counter Threat Unit, applying your strong background in infrastructure engineering, cloud-based architectures, and solution delivery. You will contribute to maintaining secure systems across hybrid environments, leveraging your expertise in both on-premises and cloud platforms such as Azure, AWS, and GCP. Main Responsibilities as IT Infrastructure Engineer - Security: Assist in gathering and analysing threat intelligence; monitor systems and networks to identify anomalies and support situational awareness. Follow established processes to help ensure compliance with legal, regulatory, and internal security requirements. Contribute to the investigation and resolution of security incidents, working in line with organisational procedures and business continuity plans. Operate tools and processes to identify vulnerabilities and support timely patching across systems and infrastructure. Configure and maintain security tools and systems (eg SIEM, Firewalls) in accordance with defined policies and procedures. Support the production of security metrics and documentation; share knowledge and best practice with colleagues to promote security awareness. Skills and experience you need as IT Infrastructure Engineer - Security: Minimum 3 years' experience in Information Security or Infrastructure & Networking. Deep knowledge of network security, Firewalls, VPNs, and endpoint protection across enterprise systems. Good communication skills both verbally and in writing with good questioning and listening skills in order to identify customer requirements. Ability to explain complex IT concepts to all levels of customer. Demonstrable ability to follow security operations, procedures, policies and activities. Experience managing incident response across an organization involving multiple business unit. A general understanding of data protection processes, policies and tools. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Incident Response Analyst Permanent - 52k - 57k + strong benefits Location: Hybrid - South Wales Your new company I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. Your new role This is an interesting opportunity to help deliver strategy which will enhance the organisation's security resilience, proactively contributing to mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role: Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data to determine the root cause of the incident and identify recommendations for improvement. Document and report incidents to the incident response team and other relevant stakeholders. Stay informed about emerging cyber threats and vulnerabilities. What you'll need to succeed Experience in a similar role, ideally around CNI and OT, with exposure to cyber plans. Proven experience operating in a SOC or a related cyber security role. In-depth knowledge of cyber threats, threat intelligence frameworks and cyber security best practice. Strong analytical and problem-solving skills. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return Salary of between 52k- 57k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Oct 02, 2025
Full time
Incident Response Analyst Permanent - 52k - 57k + strong benefits Location: Hybrid - South Wales Your new company I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. Your new role This is an interesting opportunity to help deliver strategy which will enhance the organisation's security resilience, proactively contributing to mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role: Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data to determine the root cause of the incident and identify recommendations for improvement. Document and report incidents to the incident response team and other relevant stakeholders. Stay informed about emerging cyber threats and vulnerabilities. What you'll need to succeed Experience in a similar role, ideally around CNI and OT, with exposure to cyber plans. Proven experience operating in a SOC or a related cyber security role. In-depth knowledge of cyber threats, threat intelligence frameworks and cyber security best practice. Strong analytical and problem-solving skills. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return Salary of between 52k- 57k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Join Police Digital Service as NMC Senior Cyber Threat Intelligence Specialist This is an opportunity to play your part and protect our company, our customers and our communities from cyber attacks. Be part of a dedicated team and get ready to be challenged every day to make the most of your skills and experience click apply for full job details
Sep 28, 2025
Full time
Join Police Digital Service as NMC Senior Cyber Threat Intelligence Specialist This is an opportunity to play your part and protect our company, our customers and our communities from cyber attacks. Be part of a dedicated team and get ready to be challenged every day to make the most of your skills and experience click apply for full job details
